Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/h-QFYMEgYS-vPtYY9gtFLZc7Krc.roa
File: h-QFYMEgYS-vPtYY9gtFLZc7Krc.roa (raw, json)
Hash identifier: KRTvZvK5igDJezQIFYawB1EOqpovA1DDUvlul5c7WkQ=
Subject key identifier: 87:E4:05:60:C1:20:61:2F:AF:3E:D6:18:F6:0B:45:2D:97:3B:2A:B7
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 08FB
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/h-QFYMEgYS-vPtYY9gtFLZc7Krc.roa
Signing time: Tue 29 Sep 2020 10:04:40 +0000
ROA not before: Tue 29 Sep 2020 10:04:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131645
IP address blocks: 2405:1540::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2299 (0x8fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Sep 29 10:04:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=87E40560C120612FAF3ED618F60B452D973B2AB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:ea:02:3e:d2:8f:a2:f2:8f:7f:1c:a4:ae:
b0:e7:be:f7:3f:8e:d1:50:5b:e1:96:e0:1e:d2:54:
f4:30:e3:43:07:ab:97:29:61:72:00:4d:3b:f4:d1:
03:a9:a0:c5:fa:54:d9:fa:41:6d:ab:40:c4:7a:87:
69:6d:23:85:7d:14:c0:35:3c:d8:f8:c4:90:a2:c2:
05:9e:55:a8:23:9e:e0:24:65:e5:f5:5e:b8:ec:e7:
27:d7:80:d9:44:b5:1c:b5:c3:51:5f:1b:11:f8:2e:
b7:9e:f9:34:ac:41:52:5d:94:08:fe:b3:f5:8b:68:
67:d8:2e:e7:f5:18:9b:5b:72:2a:9a:16:c3:b6:76:
b3:1b:dd:7b:42:d8:8c:8a:1c:64:b0:3b:16:60:7f:
38:fa:5d:7c:70:ce:cd:4e:e8:8e:ab:8c:7f:6b:92:
01:43:57:32:b2:1c:0c:45:24:29:17:36:7c:94:8d:
db:ae:fd:5f:37:19:13:2b:00:3f:e5:74:bc:0f:a7:
b9:a2:4f:28:c8:a1:3d:38:23:a5:01:ac:e2:88:3b:
3c:30:83:dc:24:be:f6:47:e7:60:54:4c:f1:81:0a:
3f:30:91:b9:b1:aa:bc:3d:1b:35:53:d7:10:8b:90:
57:44:1a:3a:a8:67:ce:e7:f6:e2:d8:12:a4:fd:02:
66:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E4:05:60:C1:20:61:2F:AF:3E:D6:18:F6:0B:45:2D:97:3B:2A:B7
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/h-QFYMEgYS-vPtYY9gtFLZc7Krc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:1540::/32
Signature Algorithm: sha256WithRSAEncryption
3f:45:59:10:06:8c:20:0e:81:a4:35:02:75:e6:71:d9:ca:12:
e0:9d:f2:1f:66:03:e4:2b:d4:a7:af:48:d3:5b:6e:eb:63:bb:
9a:89:50:c3:ff:94:a1:7e:d6:35:72:6f:ae:d5:8f:ab:1e:1f:
0d:5a:f9:58:c5:b9:34:63:0b:77:b5:ec:65:68:df:3a:11:00:
54:8b:13:29:2d:39:c0:fe:ca:f2:1e:c5:5e:e2:98:49:4c:24:
58:63:11:56:dd:18:b4:f9:b2:17:7a:c5:30:f0:14:8c:0e:01:
fa:9a:e5:2e:cb:9a:94:ba:74:10:66:4f:01:66:0b:c5:a8:98:
af:77:2b:57:ae:7a:d8:5a:46:b0:b6:0a:93:9a:75:44:55:51:
19:52:f7:c2:32:25:b6:d6:9e:76:df:32:d5:db:76:0c:f3:79:
22:5f:c9:b5:b5:28:c2:be:df:39:af:39:d8:24:2a:8d:df:d2:
9a:93:3e:c6:c8:fc:ac:5b:d2:d2:bc:c5:38:8f:87:96:b2:13:
91:0b:97:d3:72:dd:52:a1:d7:75:da:c3:f8:69:e7:ad:5a:2a:
0f:49:3f:84:ea:3c:3e:d9:8c:db:a3:29:95:6b:8e:b0:b0:58:
c7:69:92:66:16:12:47:28:e6:e2:be:c8:9f:c4:e1:e5:7b:d6:
b7:c1:55:16
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDg1
NDBFMTNGOEIyQ0FFODZDRDFGOEM3MjUyODM5QTUwNzhGMTZBNTAeFw0yMDA5Mjkx
MDA0NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg3RTQwNTYwQzEyMDYx
MkZBRjNFRDYxOEY2MEI0NTJEOTczQjJBQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCf+eoCPtKPovKPfxykrrDnvvc/jtFQW+GW4B7SVPQw40MHq5cp
YXIATTv00QOpoMX6VNn6QW2rQMR6h2ltI4V9FMA1PNj4xJCiwgWeVagjnuAkZeX1
Xrjs5yfXgNlEtRy1w1FfGxH4Lree+TSsQVJdlAj+s/WLaGfYLuf1GJtbciqaFsO2
drMb3XtC2IyKHGSwOxZgfzj6XXxwzs1O6I6rjH9rkgFDVzKyHAxFJCkXNnyUjduu
/V83GRMrAD/ldLwPp7miTyjIoT04I6UBrOKIOzwwg9wkvvZH52BUTPGBCj8wkbmx
qrw9GzVT1xCLkFdEGjqoZ87n9uLYEqT9AmYdAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUh+QFYMEgYS+vPtYY9gtFLZc7KrcwHwYDVR0jBBgwFoAUSFQOE/iyyuhs0fjH
JSg5pQePFqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tNVC9T
RlFPRV9peXl1aHMwZmpISlNnNXBRZVBGcVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1NGUU9FX2l5eXVoczBmakhKU2c1cFFlUEZxVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0tLTVQvaC1RRllNRWdZUy12UHRZWTlndEZM
WmM3S3JjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFUAw
DQYJKoZIhvcNAQELBQADggEBAD9FWRAGjCAOgaQ1AnXmcdnKEuCd8h9mA+Qr1Kev
SNNbbutju5qJUMP/lKF+1jVyb67Vj6seHw1a+VjFuTRjC3e17GVo3zoRAFSLEykt
OcD+yvIexV7imElMJFhjEVbdGLT5shd6xTDwFIwOAfqa5S7LmpS6dBBmTwFmC8Wo
mK93K1euethaRrC2CpOadURVURlS98IyJbbWnnbfMtXbdgzzeSJfybW1KMK+3zmv
OdgkKo3f0pqTPsbI/Kxb0tK8xTiPh5ayE5ELl9Ny3VKh13Xaw/hp561aKg9JP4Tq
PD7ZjNujKZVrjrCwWMdpkmYWEkco5uK+yJ/E4eV71rfBVRY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org